confdroid/confdroid_ssh
1
0
Fork 0
Code Issues Projects Wiki Activity

OP#561 add semanage

Browse Source
This commit is contained in:
Arne Teuke
2026-04-05 15:55:33 +02:00
parent cb50502233
commit 63dbe688d3
3 changed files with 15 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
manifests/selinux/semanage.pp Normal file
View File

@@ -0,0 +1,13 @@
## confdroid_ssh::selinux::semanage.pp
# Module name: confdroid_ssh
# Author: 12ww1160 (12ww1160@confdroid.com)
# @summary Class manages SELinux semanage settings
##############################################################################
class confdroid_ssh::selinux::semanage (
) inherits confdroid_ssh::params {
exec { 'semanage_port_ssh':
command => "semanage port -a -t ssh_port_t -p tcp ${ssh_fw_port}",
unless => "semanage port -l | grep '^ssh_port_t' | grep 'tcp' | grep '${ssh_fw_port}'",
path => ['/usr/bin', '/usr/sbin'],
}
}